Twitter has made an HTTPS option available in a bid to protect user accounts from hijacking.
Users can now turn on the "always use HTTPS" feature from the settings section of the site, meaning all their messages sent across Twitter will be encrypted.
Those accessing the site from a mobile browser will have to enter https://mobile.twitter.com to switch the feature on, as the settings are not shared across versions of the microblogging service.
"This will improve the security of your account and better protect your information if you're using Twitter over an unsecured internet connection, like a public Wi-Fi network, where someone may be able to eavesdrop on your site activity," Twitter said in a blog post.
Twitter said it wants to make HTTPS the default setting in the future and it has already done this for a number of clients and activities.
HTTPS, or Hypertext Transfer Protocol Secure, will cancel out the effect of the notorious Firesheep tool, which allowed hackers to hijack users' sessions if they were running on a public Wi-Fi connection.
Firesheep could allow a hacker to scan for vulnerable active Twitter sessions and then gain control of the account holder's unique session cookie.
Once they have hold of this cookie, hackers could imitate the original user.
One way to counter such a tool is to provide application level encryption, as Twitter has now done with HTTPS.
It remains unclear if third-party Twitter clients, such as TweetDeck, will start offering support for the option.
One of the downsides of HTTPS is that it slows connections down due to the extra actions required to supply encryption.
Read on for our analysis on the business case for Twitter.
-
RSAC Conference 2025: The front line of cyber innovationITPro Podcast Ransomware, quantum computing, and an unsurprising focus on AI were highlights of this year's event
-
Anthropic CEO Dario Amodei thinks we're burying our heads in the sand on AI job lossesNews With AI set to hit entry-level jobs especially, some industry execs say clear warning signs are being ignored
-
Who owns the data used to train AI?Analysis Elon Musk says he owns it – but Twitter’s terms and conditions suggest otherwise
-
Elon Musk confirms Twitter CEO resignation, allegations of investor influence raisedNews Questions have surfaced over whether Musk hid the true reason why he was being ousted as Twitter CEO behind a poll in which the majority of users voted for his resignation
-
Businesses to receive unique Twitter verification badge in platform overhaulNews There will be new verification systems for businesses, governments, and individuals - each receiving differently coloured checkmarks
-
Ex-Twitter tech lead says platform's infrastructure can sustain engineering layoffsNews Barring major changes the platform contains the automated systems to keep it afloat, but cuts could weaken failsafes further
-
‘Hardcore’ Musk decimates Twitter staff benefits, mandates weekly code reviewsNews The new plans from the CEO have been revealed through a series of leaked internal memos
-
Twitter could charge $20 a month for 'blue tick' verification, following Musk takeoverNews Developers have allegedly been given just seven days to implement the changes or face being fired
-
Twitter reports largest ever period for data requests in new transparency reportNews The company pointed to the success of its moderation systems despite increasing reports, as governments increasingly targeted verified journalists and news sources
-
IT Pro News In Review: Cyber attack at Ikea, Meta ordered to sell Giphy, new Twitter CEOVideo Catch up on the biggest headlines of the week in just two minutes
